{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,6,22]],"date-time":"2025-06-22T04:03:38Z","timestamp":1750565018402,"version":"3.41.0"},"publisher-location":"Cham","reference-count":19,"publisher":"Springer International Publishing","isbn-type":[{"type":"print","value":"9783319611518"},{"type":"electronic","value":"9783319611525"}],"license":[{"start":{"date-parts":[[2017,1,1]],"date-time":"2017-01-01T00:00:00Z","timestamp":1483228800000},"content-version":"unspecified","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2017]]},"DOI":"10.1007\/978-3-319-61152-5_3","type":"book-chapter","created":{"date-parts":[[2017,7,6]],"date-time":"2017-07-06T14:43:15Z","timestamp":1499352195000},"page":"47-65","source":"Crossref","is-referenced-by-count":0,"title":["Lessons Learned: Visualizing Cyber Situation Awareness in a Network Security Domain"],"prefix":"10.1007","author":[{"given":"Christopher G.","family":"Healey","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Lihua","family":"Hao","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Steve E.","family":"Hutchinson","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2017,7,7]]},"reference":[{"issue":"2","key":"3_CR1","doi-asserted-by":"crossref","first-page":"127","DOI":"10.1007\/s13218-012-0179-2","volume":"26","author":"JM Bradshaw","year":"2012","unstructured":"Bradshaw, J.M., Carvalho, M., Bunch, L., Eskridge, T., Feltovich, P.J., Johnson, M., Kidwell, D.: Sol: an agent-based framework for cyber situation awareness. K\u00fcnstliche Intellienz 26(2), 127\u2013140 (2012)","journal-title":"K\u00fcnstliche Intellienz"},{"key":"3_CR2","doi-asserted-by":"crossref","unstructured":"Cockburn, A., Karlson, A., Bederson, B.B.: A review of overview+detail zooming and focus+context interfaces. ACM Comput. Surv. 41(1) (2008). Article 2","DOI":"10.1145\/1456650.1456652"},{"issue":"1","key":"3_CR3","doi-asserted-by":"crossref","first-page":"6","DOI":"10.1108\/17440081311316361","volume":"9","author":"TK Dang","year":"2013","unstructured":"Dang, T.K., Dang, T.T.: A survey on security visualization techniques for web information systems. Int. J. Web Inf. Syst. 9(1), 6\u201331 (2013)","journal-title":"Int. J. Web Inf. Syst."},{"key":"3_CR4","doi-asserted-by":"crossref","unstructured":"Goodall, J., Sowul, M.: VIAssist: visual analytics for cyber defense. In: IEEE Conference on Technologies for Homeland Security (HST 2009), Boston, pp. 143\u2013150 (2009)","DOI":"10.1109\/THS.2009.5168026"},{"key":"3_CR5","unstructured":"Heyes, R.: RGraph: HTML5 and JavaScript charts (2017). https:\/\/www.rgraph.net"},{"key":"3_CR6","unstructured":"HP ArcSight ESM. http:\/\/www8.hp.com\/us\/en\/software-solutions\/arcsight-esm-enterprise-security-management\/"},{"key":"3_CR7","doi-asserted-by":"crossref","unstructured":"Kan, Z., Hu, C., Wang, Z., Wang, G., Huang, X.: NetVis: a network security management visualization tool based on Treemap. In: 2nd International Conference on Advanced Computer Control (ICACC 2010), Shenyang, pp. 18\u201321 (2010)","DOI":"10.1109\/ICACC.2010.5487236"},{"key":"3_CR8","doi-asserted-by":"crossref","unstructured":"Mansmann, F., Fisher, F., Keim, D.A., North, S.C.: Visual support for analyzing network traffic and intrusion detection events using TreeMap and graph representations. In: Symposium on Computer-Human Interaction for Management of Information (CHIMIT 2009), Baltimore, article 3 (2009)","DOI":"10.1145\/1641587.1641590"},{"key":"3_CR9","doi-asserted-by":"crossref","unstructured":"McPherson, J., Ma, K., Krystosk, P., Bartoletti, T., Christensen, M.: PortVis: a tool for port-based detection of security events. In: Workshop on Visualization and Data Mining for Computer Security (VizSEC\/DMSEC 2004), Washington, DC, pp. 73\u201381 (2004)","DOI":"10.1145\/1029208.1029220"},{"key":"3_CR10","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"144","DOI":"10.1007\/978-3-540-85933-8_14","volume-title":"Visualization for Computer Security","author":"P Minarik","year":"2008","unstructured":"Minarik, P., Dymacek, T.: NetFlow data visualization based on graphs. In: Goodall, J.R., Conti, G., Ma, K.-L. (eds.) VizSec 2008. LNCS, vol. 5210, pp. 144\u2013151. Springer, Heidelberg (2008). doi: 10.1007\/978-3-540-85933-8_14"},{"key":"3_CR11","doi-asserted-by":"crossref","first-page":"85","DOI":"10.1007\/978-3-540-78243-8_6","volume-title":"VizSEC 2007","author":"D Phan","year":"2008","unstructured":"Phan, D., Gerth, J., Lee, M., Paepcke, A., Winograd, T.: Visual analysis of network flow data with timelines and event plots. In: Goodall, J.R., Conti, G., Ma, K.-L. (eds.) VizSEC 2007, pp. 85\u201399. Springer, Heidelberg (2008)"},{"key":"3_CR12","unstructured":"SAS Visual Analytics. http:\/\/www.sas.com\/en_us\/software\/business-intelligence\/visual-analytics.html"},{"issue":"8","key":"3_CR13","doi-asserted-by":"crossref","first-page":"1313","DOI":"10.1109\/TVCG.2011.144","volume":"18","author":"H Shiravi","year":"2012","unstructured":"Shiravi, H., Shiravi, A., Ghorbani, A.: A survey of visualization systems for network security. IEEE Trans. Vis. Comput. Graph. 18(8), 1313\u20131329 (2012)","journal-title":"IEEE Trans. Vis. Comput. Graph."},{"key":"3_CR14","unstructured":"Tableau Software. http:\/\/www.tableau.com"},{"key":"3_CR15","unstructured":"Tibco Spotfire. http:\/\/spotfire.tibco.com"},{"key":"3_CR16","doi-asserted-by":"crossref","unstructured":"Tricaud, S., Nance, K., Saad\u00e9, P.: Visualizing network activity using parallel coordinates. In: 44th Hawaii International Conference on System Sciences (HICSS 2011), Poipu, pp. 1\u20138 (2011)","DOI":"10.1109\/HICSS.2011.488"},{"key":"3_CR17","volume-title":"The Visual Display of Quantitative Information","author":"ER Tufte","year":"1983","unstructured":"Tufte, E.R.: The Visual Display of Quantitative Information. Graphics Press, Cheshire (1983)"},{"key":"3_CR18","volume-title":"Envisioning Information","author":"ER Tufte","year":"1990","unstructured":"Tufte, E.R.: Envisioning Information. Graphics Press, Cheshire (1990)"},{"issue":"4","key":"3_CR19","doi-asserted-by":"crossref","first-page":"404","DOI":"10.1002\/sec.324","volume":"5","author":"Y Zhang","year":"2012","unstructured":"Zhang, Y., Xiao, Y., Chen, M., Zhang, J., Deng, H.: A survey of security visualization for computer network logs. Secur. Commun. Netw. 5(4), 404\u2013421 (2012)","journal-title":"Secur. Commun. Netw."}],"container-title":["Lecture Notes in Computer Science","Theory and Models for Cyber Situation Awareness"],"original-title":[],"link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-319-61152-5_3","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,21]],"date-time":"2025-06-21T12:25:23Z","timestamp":1750508723000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/978-3-319-61152-5_3"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2017]]},"ISBN":["9783319611518","9783319611525"],"references-count":19,"URL":"https:\/\/doi.org\/10.1007\/978-3-319-61152-5_3","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"type":"print","value":"0302-9743"},{"type":"electronic","value":"1611-3349"}],"subject":[],"published":{"date-parts":[[2017]]}}}